pki_crypto: plug pki_signature_from_blob leaks
c0102e6a5953
Actions

Authored by simonsj on Jan 29 2019, 10:32 PM.

Description

pki_crypto: plug pki_signature_from_blob leaks

In 3341f49a49a07cbce003e487ef24a2042e800f01, some direct assignments
to OpenSSL structures was replaced with usage of getter and setter
macros. Ensure to bignum_safe_free a couple of intermediate values
in error paths for pki_signature_from_blob DSS and ECDSA cases.

Signed-off-by: Jon Simons <jon@jonsimons.org>
Reviewed-by: Andreas Schneider <asn@cryptomilk.org>

Details

Committed

asn	Jan 30 2019, 1:22 PM

Parents

rLIBSSHccd73db90c9f: pki: NULL check pki_signature_from_rsa_blob result

Branches

Unknown

Tags

Unknown

Event Timeline

asn committed rLIBSSHc0102e6a5953: pki_crypto: plug pki_signature_from_blob leaks (authored by simonsj).Jan 30 2019, 1:22 PM

asn mentioned this in rLIBSSHe05e4ae9712b: pki_crypto: plug pki_signature_from_blob leaks.Feb 7 2019, 2:34 PM

Changes (1)

				Path	Packages
	M			src/pki_crypto.c

rLIBSSHc0102e6a5953

View Options